Carillon STS is a demonstration Identity Provider for issuing managed info cards. It’s written in PHP, backends into either a database or LDAP, and is easily customizable to accommodate custom claims.
Release Notes: This version contains updates for X.509 support to work more properly with Windows CardSpace. The infocard now contains the right kind of UserCredential tag, and the right assertion names and tags. The mex output contains policy for allowing CardSpace to authenticate itself using the certificate. The token request consumer checks the signature on the included timestamp, since CardSpace doesn't support using the user certificate for the HTTPS/SSL transport. There are several other fixes.
No changes have been submitted for this release.